Articles about Malware

Hacker

Sneaky 'fileless' malware flung at Israeli targets via booby-trapped Word docs

A newly uncovered cyber-espionage campaign targeting Israeli organisations relies on "fileless" malware hidden in Microsoft Word documents, a hacker tactic that's becoming a growing menace. The attack was delivered through compromised email accounts at Ben-Gurion University and sent to multiple targets across Israel. Malware …
John Leyden, 28 Apr 2017
vomit

Chipotle may have banished E coli, but now it has a new infection

The last quarter has been a trying one for Mexican fast-food chain Chipotle. People are returning to its restaurants after the great 2015 E coli outbreak, but now customers are being struck by a different kind of virus. The taco takeaway admitted that it had become the latest victim of what sounds like classic cash register …
Iain Thomson, 26 Apr 2017
idiot

Beware of geeks bearing gifts: Evil game guides infect 2 million Androids

Ad-displaying malware in nearly 50 apps on the Google Play Store has infected nearly two million phones. And it's all thanks a combination of user stupidity, and the ad giant failing to spot and remove the software nasty lurking in its application souk. The rogue code – dubbed Falseguide because it is contained within game …
Iain Thomson, 26 Apr 2017
Pulling the plug

Interpol unplugs nearly 9,000 Asian command and control networks

An Interpol investigation has revealed a worrying degree of insecurity in south-east Asian countries, with even government-operated web servers infected to operate as command and control systems for bot-herders. The investigation turned up and shut down 9,000 C&C servers across “hundreds” of compromised Websites in Indonesia, …
Crown courtroom. Pic: Shutterstock

Brit behind Titanium Stresser DDoS malware sent to chokey

A Hertfordshire man has been jailed for two years after netting nearly £400,000 from the malware he wrote as a 15-year-old student. Adam Mudd, now 20, was sentenced to two years in a young offenders’ institute this afternoon. He had pleaded guilty to two charges under the Computer Misuse Act and one charge of concealing …
Gareth Corfield, 25 Apr 2017
Linux penguin canape... snacks. Photo by SHutterstock

Hackers uncork experimental Linux-targeting malware

Hackers have unleashed a new malware strain that targets Linux-based systems. The Linux/Shishiga malware uses four different protocols (SSH, Telnet, HTTP and BitTorrent) and Lua scripts for modularity, according to an analysis of the nasty by security researchers at ESET. Shishiga relies on the use of weak, default …
John Leyden, 25 Apr 2017
panic

Webroot antivirus goes bananas, starts trashing Windows system files

Updated Webroot's security tools went berserk today, mislabeling key Microsoft Windows system files as malicious and temporarily removing them – knackering countless PCs in the process. Not only were people's individual copies of the antivirus suite going haywire, but also business editions and installations run by managed service …
Iain Thomson, 25 Apr 2017
hotel

If you've stayed at a Holiday Inn you may have lost more than a good night's sleep (like maybe your bank card)

In February, Intercontinental Hotels Group alerted customers that some of its US locations had been infected with credit-card-stealing malware. Now it has admitted the cyber-outbreak is much worse than first thought. IHG, which owns brands like Holiday Inn and Crown Plaza, has warned that around 1,200 of its hotels across the …
Iain Thomson, 19 Apr 2017
phishing

UK.gov survey shines light on cybersecurity threats to businesses

Phishing and ransomware remain the most pressing security threats for UK business, according to a government-backed survey out Wednesday. The survey, commissioned by the Department for Culture, Media and Sport, found that the most common types of breaches are related to staff receiving fraudulent emails (in 72 per cent of …
John Leyden, 19 Apr 2017
Smart oven

Fixing your oven can cook your computer

Updated If your Hotpoint cooker or washer's on the blink, don't arrange a repair by visiting the manufacturer's website: the appliance vendor has been inadvertently foisting nastyware onto visitors. As spotted by Netcraft, fake Java update dialogs started appearing on Hotpoint's UK and Republic of Ireland sites this week. If you click …
Simon Sharwood, 19 Apr 2017

Profit with just one infection! Crook sells ransomware for $175

Cybercrooks have begun retailing a new easy-to-use ransomware strain that promises profit with only one successful infection. Karmen is being sold on Dark Web forums from Russian-speaking cyber-criminal DevBitox for $175. The new ransomware-as-a-service variant offers a graphical dashboard, allowing purchasers to keep a …
John Leyden, 18 Apr 2017

Back to the Future 2: Gasp! America's trade watchdog discovers the risks of 'free' movies

You may want to sit down for this. Did you know that movie files downloaded for free from the internet may contain malware? You did? Well it was news to US trade watchdog the FTC's assistant director Will Maxson, who published a whole blog post about this shocking revelation on Thursday. Will was also shocked to discover it …
Kieren McCarthy, 13 Apr 2017
Woman stares at laptop screen, shocked. Pic by shutterstock

Cerber surpasses Locky to become dominant ransomware menace

Cerber eclipsed Locky as the most common ransomware pathogen doing the rounds in the first three months of 2017. Cerber's control of the cybercrime market rose from 70 per cent market share in January to 87 per cent in March, according to the latest cybercrime tactics report by Malwarebytes Lab. The success of Cerber is down …
John Leyden, 13 Apr 2017

Oh my Microsoft Word: Dridex hackers exploit unpatched flaw

Cybercrooks are actively exploiting an unpatched Microsoft Word vulnerability to distribute the Dridex banking trojan, claim researchers. Booby-trapped emails designed to spread the cyber-pathogen have been sent to hundreds of thousands of recipients across numerous organisations, according to email security firm Proofpoint. …
John Leyden, 11 Apr 2017
security

Solaris admins! Look out – working remote root exploit leaked in Shadow Brokers dump

Updated Now that the sulky Shadow Brokers gang has leaked its archive of stolen NSA exploits, security experts are trawling Uncle Sam's classified attack code – and the results aren't good for anyone using Oracle's Solaris. Matthew Hickey, cofounder of British security shop Hacker House, is among those going through the dumped files, …
Iain Thomson, 11 Apr 2017
malware

Forget Mirai – Brickerbot malware will kill your crap IoT devices

A new form of attack code has come to town and it uses techniques similar to Mirai to permanently scramble Internet of Things devices. On March 20 researchers at security shop Radware spotted the malware, dubbed Brickerbot, cropping up in honeypots it sets up across the web to lure interesting samples. In the space of four …
Iain Thomson, 8 Apr 2017
Vulture

'Amnesia' IoT botnet feasts on year-old unpatched vulnerability

Hackers have brewed up a new variant of the IoT/Linux botnet "Tsunami" that exploits a year-old but as yet unresolved vulnerability. The Amnesia botnet targets an unpatched remote code execution vulnerability publicly disclosed more than a year ago in DVR (digital video recorder) devices made by TVT Digital and branded by over …
John Leyden, 7 Apr 2017
Sad man stares glumly over boxed contents of desk. Image via shutterstock (Baranq)

Everything's fine, says Cylance, as workers given the boot

Updated Prominent next-gen antivirus vendor Cylance has confirmed a wide-ranging restructure involving job cuts. In response to queries based on an anonymous tip to El Reg on Tuesday that several workers had been shown the door, Cylance confirmed it was restructuring its business without commenting on the job cut numbers that were the …
John Leyden, 5 Apr 2017

Create a news alert about Malware, or find more stories about Malware.

Biting the hand that feeds IT © 1998–2017